Sample details: dd381ea329f52af1845fc059368a2152

Hashes
MD5: dd381ea329f52af1845fc059368a2152
SHA1: ffdf4a92f2a6e832b1342d75d5100a95536eb3cc
SHA256: 513530ac8a8b2b81f96c41e99324af619ce2aaf48c12d56fd9eb4d1444a80bfb
SSDEEP: 384:b2Dyq0z2U5v9R/zQ8kn8INMdX9gugoL2RHuy902J7:kyq82Ud7/zfkn8I+il590u7
Details
File Type: PE32
Yara Hits
YRP/Visual_Cpp_2005_Release_Microsoft | YRP/VC8_Microsoft_Corporation | YRP/Microsoft_Visual_Cpp_8 | YRP/IsPE32 | YRP/IsWindowsGUI | YRP/IsBeyondImageSize | YRP/HasRichSignature | YRP/domain | YRP/contentis_base64 | YRP/Check_OutputDebugStringA_iat | YRP/anti_dbg | FlorianRoth/DragonFly_APT_Sep17_3 |
Source
http://newew.whatisthis988.5gbfree.com/System.exe